24.11.3 Verifying That Keys and Certificates Exist in the
LDAP Directory

The following examples demonstrate searching an LDAP directory for CA
certificates and public keys and their certificates.

24.11.3.1 Searching for One CA Certificate

In the following example, the base DN defined by the -b option, cn=SMIME admin, ou=people,o=demo.siroe.com,o=demo objectclass=*,
describes one CA certificate in the LDAP directory. If found in the directory, ldapsearch returns information about the certificate to the ca-cert.lidf file.

Searching for a Several Public Keys

In the following example, the base DN defined by the -b option, o=demo.siroe.com,o=demo objectclass=*, is such that all public keys
and certificates found at and below the base DN in the LDAP directory are
returned to the file usergroup.ldif: